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(57) Abstract: The invention provides authentication and authorization support for MIPv6 in a CDMA framework by transferring 
MIPv6-related information in an, preferably extended, authentication protocol in an end-to-end procedure between a mobile node 
(10) in a visited network and the home network of the mobile node over an AAA infrastructure. Preferably, the end-to-end proce- 
dure is executed between the mobile node and an AAA server (34) of the home network- In the visited network, after lower-layer 
setup, point-to-point communication is established between the mobile node and an internetworking access server (22). The access 
server then communicates with the AAA home server for MIPv6 authentication and authorization of the mobile node. A preferred 
embodiment uses EAP as basis for the extended authentication protocol. EAP extensions are then used for MIPv6 initiation and 
re-authentication, while CHAP can be beneficial for MIPv6 hand-in. 



WO 2004/112349 Al 111 11 II 111 11 II Hill III II III II III llll III I III II II llll 



SK, TR), OAPI (BF, BJ, CF, CG, CI, CM, GA, GN, GQ, 
GW, ML, MR, NE, SN, TD, TG). 

Published: 

— with international search report 

— before the expiration of the time limit for amending the 
claims and to be republished in the event of receipt of 
amendments 



For two -letter codes and other abbreviations, refer to the "Guid- 
ance Notes on Codes and Abbreviations" appearing at the begin- 
ning of each regular issue of the PCT Gazette. 



WO 2004/112349 



PCT/SE2004/000950 



METHOD, SYSTEM AND APPARATUS TO SUPPORT MOBILE IP VERSION 6 SERVICES IN CDMA 
SYSTEMS 

TECHNICAL FIELD 

5 The present invention generally relates to mobile communications and in particular to 
support for Mobile IP version 6 services in CDMA systems. 

BACKGROUND 

10 Mobile IP (MIP) allows a mobile node to change its point of attachment to the Internet 
with minimal service disruption. MIP in itself does not provide any specific support for 
mobility across different administrative domains, which limits the applicability of MIP 
in a large-scale commercial deployment. 

15 The MIP version 6 (MIPv6) protocol [1] allows nodes to move within the Internet 
topology while maintaining reachability and on-going connections with correspondent 
nodes. In this context, each mobile node is always identified by its home address, 
regardless of its current point of attachment to the IPv6 Internet. While situated away 
from its home network, a mobile node is also associated with a care-of address, which 

2 0 provides information about the mobile node's current location. IPv6 packets addressed 
to the mobile node's home address are more or less transparently routed to its care-of 
address (Co A). The MIPv6 protocol enables IPv6 nodes to cache the binding of a 
mobile node's home address with its care-of address, and then send any packets 
destined for the mobile node to the care-of address. To this end, the mobile node sends 

2 5 so-called binding updates to its Home Agent (HA) and the correspondent nodes with 

which it is communicating every time it moves. 

MIPv6 capable mobile nodes, such as cellular phones, laptops and other end-user 
equipment, can thus roam between networks that belong to their home service provider 

3 0 as well as others. Roaming in foreign networks is enabled as a result of the service 

level and roaming agreements that exist between operators. MIPv6 provides session 
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continuity within a single administrative domain, but depends on the availability of an 
Authentication, Authorization and Accounting (AAA) infrastructure to provide its 
services across different administrative domains, i.e. when roaming outside the 
network administered by the home operator. 

5 

Although Mobile IPv6 can be regarded as a complete mobility protocol, more and/or 
improved mechanisms that facilitate deployment of MIPv6 are still needed in order to 
enable large-scale deployment. In particular, solutions facilitating use of MIPv6 in 
CDMA systems, such as CDMA2000, are lacking. Within the 3GPP2 CDMA2000 

10 framework today, Mobile IPv4 Operation and Simple IPv4/IPv6 Operation have been 
specified [2], However, there is no corresponding specification for Mobile IPv6 
Operation and how 3GPP2 will adopt MIPv6 is not yet defined. Solutions enabling 
Mobile IPv6 operation within CDMA2000 would thus be very desirable. Hereby, 
appropriate mechanisms for matters related to authentication are crucial. Moreover, in 

15 order to enable smooth Mobile IPv6 Operation, it is often desirable to shorten the 
handoff times when the MN becomes temporarily unreachable as it moves to a new 
domain and acquires a new authorized CoA. 

Thus, there is a considerable need for a MIPv6 authentication mechanism that is 
2 0 suitable for CDMA2000 and similar CDMA frameworks and in particular for a 
mechanism allowing comparatively short handoff/setup times. 



SUMMARY 



2 5 A general object of the present invention is to support MIPv6 service in CDMA 

systems. A specific object of the invention is to enable MIPv6 authentication and/or 
authorization within frameworks such as CDMA2000 and CDMAOne. Another object 
is to achieve improved packet data session setup times for MIPv6 communication in 
CDMA systems. It is also an object of the invention to provide a general mechanism 

3 0 for MIPv6 hand-in within the CDMA framework. 
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These objects are achieved in accordance with the attached claims. 

The invention basically relates to authentication and authorization support for MIPv6 
in a CDMA framework, and is based on transferring MIPv6-related information in an 
5 authentication protocol in an end-to-end procedure between a mobile node in a visited 
network and the home network of the mobile node over an AAA infrastructure. The 
MIPv6-related information may typically comprise MIPv6 authentication, 
authorization and/or configuration information. The authentication protocol is 
preferably an extended authentication protocol but entirely newly defined protocols can 
1 0 also be used. 

Preferably, the end-to-end procedure is executed between the mobile node and an AAA 
server of the home network, with appropriate interaction with a home agent as and 
when necessary. In the visited network, after lower-layer setup (including wireless link 
15 setup), point-to-point communication is for example established between the mobile 
node and a suitable CDMA-specific internetworking access server, such as a Packet 
Data Serving Node (PDSN). The access server/PDSN then communicates with the 
AAA home network server for MIPv6 authentication and authorization of the mobile 
node more or less directly or via an AAA server in the visited network. 

20 

For example, the invention may use the Extensible Authentication Protocol (EAP) as 
basis for the extended authentication protocol, creating EAP extensions while typically 
keeping the EAP lower layer(s) intact. This normally means that the MIPv6-related 
information is incorporated as additional data in the EAP protocol stack. 

25 

The authentication protocol is preferably carried by PPP (Point-to-Point Protocol), 
CSD-PPP (Circuit Switched Data-PPP), or PANA (Protocol for carrying 
Authentication for Network Access) between the mobile node and the access server 
(PDSN), and by an AAA framework protocol application such as Diameter and Radius 
3 0 within the AAA infrastructure between the access server (PDSN) and the AAA home 
network server. 
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Initialization and configuration of the point-to-point communication between the 
mobile node and the access server (PDSN) is preferably accomplished by using e.g. 
PPP or CSD-PPP, where the use of CSD-PPP considerably reduces the number of 
round trips and thus shortens the packet data session setup time. Advantageously, the 
access server (PDSN) initially offers the mobile node the possibility to use CSD-PPP 
as an alternative to PPP, for example by sending out a standard PPP/LCP packet, 
immediately followed by a PPP/CHAP and/or a PPP/EAP packet. The mobile node can 
then choose between PPP and CSD-PPP. If the mobile node opts for using PPP it then 
ignores messages that are not PPP/LCP. If the mobile opts for using CSD-PPP, LCP 
(Link Control Protocol), network authentication and NCP (Network Control Protocol) 
phases can be processed concurrently. 

Three main scenarios for MIPv6 authentication and/or authorization have been 
15 identified: MIPv6 initiation, MIPv6 hand-in, and MIPv6 re-authentication. EAP 
extensions adapted for MIPv6 are preferably used for MIPv6 initiation and re- 
authentication, while the use of CHAP (Challenge Handshake Authentication Protocol) 
has turned out to be beneficial for MIPv6 hand-in with MIPv6 authentication. 

2 0 By means of the present invention, a complete overall-solution for MIPv6 
authentication in the CDMA framework is accomplished for the first time, while in the 
prior art there have only been partial solutions non-consistent with each other. By 
employing CSD-PPP in this context, the packet data session setup time can be 
considerably shortened. Moreover, relying on authentication protocol extensions like 

2 5 EAP extensions provides a streamlined solution, which is manageable and elegant with a 
minimum of backward compatibility problems. The use of EAP also allows the AAA 
components in the visited network to be agnostic to the MIPv6 procedures (i.e. this 
removes the dependency on MIPv6 support in the visited network), and act as mere 
pass-through agent(s), at least when the HA is located in the home network. 

30 
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The proposed solution is especially suitable for MIPv6 authentication within 
CDMA2000 e.g. in accordance with 3GPP2 specifications, but may also be used in 
other frameworks, such as CDMAOne or future CDMA frameworks. 

BRIEF DESCRIPTION OF THE DRAWINGS 

The invention may best be understood by reference to the following description and the 
accompanying drawings, in which: 

Fig. 1 illustrates the general 3GPP2 reference model for Mobile IP Access; 

Fig. 2 is a schematic view of a CDMA network for Mobile IP access in which the 
present invention may be used; 

Fig. 3 is a signal flow diagram for generally handling MIPv6 initiation in 
accordance with an exemplary embodiment of the present invention; 

Fig. 4 is a signal flow diagram for generally handling MIPv6 initiation in 
accordance with another exemplary embodiment of the present invention; 

Fig. 5 is a signal flow diagram of MIPv6 initiation with MIPv6 authentication in 
accordance with an exemplary embodiment of the present invention; 

Fig. 6 is a signal flow diagram of MIPv6 initiation with MIPv6 authentication in 
accordance with another exemplary embodiment of the present invention; 

Fig. 7 is a signal flow diagram of MIPv6 initiation with MIPv6 authentication in 
accordance with still another exemplary embodiment of the present 
invention; 



Fig. 8 



is a signal flow diagram of MIPv6 hand-in with MIPv6 authentication in 
accordance with an exemplary embodiment of the present invention; 
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Fig. 9 is a signal flow diagram of MIPv6 hand-in with MIPv6 authentication in 
accordance with another exemplary embodiment of the present invention; 

5 Fig. 10 is a signal flow diagram of MIPv6 re-authentication in accordance with an 
exemplary embodiment of the present invention; 

Fig. 11 is a signal flow diagram of MIPv6 re-authentication in accordance with 
another exemplary embodiment of the present invention; 

10 

Fig. 12 is a schematic block diagram of an internetworking access server in 
accordance with an exemplary embodiment of the present invention; 

Fig. 13 is a schematic block diagram illustrating an AAA home network server in 
15 accordance with an exemplary embodiment of the present invention; and 

Fig. 14 is a schematic flow diagram of a basic example of a method for supporting 
MIPv6 service for a mobile node in a CDMA system in accordance with the 
present invention. 



20 



DETAILED DESCRIPTION 



A list of abbreviations used in this document is presented at the end of the description. 

2 5 Fig. 1 shows the general 3GPP2 reference model for Mobile IP Access. A situation 
where a mobile station is handed over from a source RN and a serving PDSN to a 
target RN and a target PDSN is illustrated. The AAA servers of Fig. 1 are exemplified 
as RADIUS servers but can very well be replaced with other AAA servers, including 
servers operating in accordance with the Diameter protocol. 
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Fig. 2 is a schematic view of a CDMA communication system for Mobile IP access in 
which the present invention may be used. The schematic CDMA architecture of Fig. 2 
can be viewed as a simplified and generalized version of the model in Fig. 1. A mobile 
node (MN) 10, e.g. a cellular phone, a laptop or a PDA, roaming in a foreign/visited 
5 network other than its associated home network is shown. In the visited network, the 
MN 10 communicates with an internetworking access server exemplified as a packet 
data serving node (PDSN) 22 over a radio network (RN) 21, which manages the 
physical layer connection to the MN 10. The internetworking access server 22 provides 
internetworking between the radio and IP networks, and is in a sense comparable to an 
10 AAA client acting as a foreign agent. Although PDSN is the specific node used in 
CDMA2000, equivalents can be found in other CDMA frameworks. Thus, the PDSN 
typically initiates authentication, authorization and accounting for the MN 10. 

As illustrated in Fig. 2, the PDSN 22 connects to a Home Agent (HA) 36 in the home 
15 network of the MN 10 over an AAA infrastructure comprising one or more AAA 
servers 24, 34. The HA 36 is typically maintained by the service provider of the user 
and manages user registration and redirection of packets to the PDSN, for example. 
The overall purpose of the AAA servers is to interact with the PDSN and other AAA 
servers to authorize, authenticate and (optionally) perform accounting for the mobile 
2 0 client. This normally involves providing mechanisms by means of which security 
associations can be accomplished between the MN 10 and HA 36. 

Mobile IP authentication and authorization often involves the following basic steps. 
The MN 10 connects to the nearest PDSN/foreign agent 22. The PDSN in turn contacts 
25 the AAAh server 34, normally via the AAAv server 24, with an access request 
message to authenticate the user and obtain the appropriate tunneling parameters, IP 
address etc. If the authentication is successful, the AAA server(s) authorizes the user 
and a security association between the MN 10 and the HA 36 can be established. It is 
normally the HA 36 that assigns the IP address and routes user traffic. 

30 
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To our knowledge, no complete solution for authentication and/or authorization 
support of MIPv6 has been presented in the prior art. Some proposals target portions of 
the end-to-end AAA chain (e.g. [3] for the part between AAA Client and AAA servers, 
and PANA [4] protocol for the part between MN and AAA Client), but these partial 
5 solutions are not consistent with each other and do not work end-to-end. Moreover, the 
conventional mechanism of [3] requires the AAA Client and AAAv to understand the 
authentication method and be aware of the contents of the exchanges of MIPv6-related 
data between the MN and the AAAh. With such a solution it is not possible to apply 
prior encryption between MN and AAAh, and the system becomes highly vulnerable 
1 0 with respect to eavesdropping, man-in-the-middle attacks and the like. 

In particular, as mentioned in the background section, there is no prior-art mechanism 
for MIPv6 authentication and/or authorization in frameworks like CDMA2000, and the 
need for such a mechanism, in particular one associated with comparatively short 
15 handoff/setup times is considerable. 

To meet this need, the present invention proposes to employ an authentication protocol 
in an end-to-end procedure between a mobile node in a visited network and the home 
network of the mobile node over an AAA infrastructure, preferably combining 
2 0 protocols like the above PPP, CSD-PPP, PANA and Diameter/Radius protocols in a 
new way to achieve an authentication and/or authorization procedure appropriate for 
CDMA systems such as CDMA2000. The MIPv6-related information preferably 
comprises authentication, authorization and/or configuration information that is 
transferred over the AAA infrastructure for establishing a MIPv6 security association 

2 5 (i.e. security relation) or binding between the mobile node and a home agent. 

Preferably, the end-to-end procedure is executed between the mobile node and an AAA 
server of the home network with appropriate interaction with a home agent as and 
when necessary. Fig. 13 is a schematic block diagram of a preferred embodiment of such 

3 0 an AAA home network server according to the invention. In this example, the AAAh 

server 34 basically comprises a home address assignment module 51, a home agent (HA) 
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assignment module 52, a security association module 53, an authorization information 
manager 54 and an input-output (I/O) interface 55. The module 51 preferably performs 
home address assignment (unless the home address is configured at the mobile node and 
sent to the HA), and the module 52 is operable for assigning and/or re-assigning a 
5 suitable home agent (HA). The AAAli server 34 typically also receives a key seed and a 
binding update (BU) from the mobile node. Alternatively the AAAh server 34 generates 
the key seed itself and sends it to the mobile node. The security association module 53 
preferably generates the required security key in response to the seed, and securely 
transfers this key to the HA. The binding update (BU) is also forwarded to the home 

10 agent (HA) so that the HA may cache the binding of the home address with the care-of 
address of the mobile node. The AAAh server may also receive information, such as 
IPSec information, from the HA for finalizing the security association. This information 
together with other collected authorization (and/or configuration) information may then 
be stored in the optional authorization information manager 54 for subsequent transfer to 

1 5 the mobile node. 

In the visited network, point-to-point communication is typically established between 
the mobile node and a suitable internetworking access server such as a PDSN that for 
example provides the required internetworking between the radio and IP networks. Fig. 
2 0 12 is a schematic block diagram of a preferred embodiment of such an internetworking 
access server. The internetworking access server 22 comprises a module 41 for 
communication with mobile nodes, e.g. via PPP or CSD-PPP, as well as a module 42 
for communication with AAA servers and similar nodes. 

2 5 The authorization phase naturally includes explicit authorization but may also include 

configuration of the involved nodes. MIPv6-related configuration such as configuration 
of the mobile node and/or configuration of the HA is therefore normally regarded as part 
of the overall authorization procedure. 

3 0 The term "AAA" should be taken within its general meaning of Internet drafts, RFCs 

and other standardization documents. Typically, the authentication and security key 
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agreement of an AAA (Authorization, Authentication, and Accounting) infrastructure is 
based on symmetric cryptography, implying the existence of an initial secret shared 
between the mobile node and the home network operator or a trusted party. In some 
scenarios and applications, for example the accounting feature of the AAA infrastructure 
5 may be disabled or not implemented. The AAA infrastructure generally includes one or 
more AAA servers, in the home network and/or the visited network, and may also 
include one or more AAA clients. Optionally, there can also be one or more intermediate 
networks included in the AAA infrastructure. 

10 In the following, some basic features for MIPv6 authentication and/or authorization in 
the CDMA framework will be outlined with reference to three main MIPv6 scenarios: 
MIPv6 initiation, MIPv6 hand-in, and MIPv6 re-authentication. 

For MIPv6 initiation, when there is no prior MIPv6 service available, lower-layer 
15 configuration is performed including wireless link setup, and then the point-to-point 
communication between the mobile node and the PDSN or equivalent node in the 
visited network has to be initialized and configured. The configuration of the point-to- 
point communication is preferably accomplished by using e.g. PPP or CSD-PPP. The 
use of CSD-PPP considerably reduces the number of round trips and thus shortens the 
2 o packet data session setup time. 

The invention preferably uses an extended authentication protocol as basis for the 
authentication protocol transferring the MIPv6-related data, which in the following will 
primarily be exemplified by such an extended protocol. For example, the invention may 
2 5 use the Extensible Authentication Protocol (EAP) as basis for the extended 
authentication protocol, incorporating MIPv6-related information for authentication, 
authorization and/or configuration as additional data in the EAP protocol stack. Still, it 
should be emphasized that the authentication protocols built from scratch also lie 
within the scope of the invention. 

30 
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Once the communication between the mobile node and the PDSN or equivalent node is 
configured, the extended authentication protocol may be carried, e.g. by PPP, CSD- 
PPP, or PANA between the mobile node and the PDSN, and by an AAA framework 
protocol application such as Diameter and RADIUS within the AAA infrastructure to 
5 the AAA home network server. 

For IP address assignment purposes, it is for example possible to use DHCP for IP 
address assignment. Alternatively, the NCP (IPv6CP) phase of PPP/CSD-PPP can be 
used for Interface-ID assignment, and IPv6 router solicitation/advertisement for 
10 obtaining the global prefix for the IPv6 address. For general information on address 
configuration in IPv6, reference is made to [5]. 

For MIPv6 hand-in, when there is a handover that requires re-establishment of the 
necessary bearers for an ongoing MIPv6 service to be able to continue, it has turned 
1 5 out to be beneficial to employ the CHAP protocol for authentication, for example using 
PPP or CSD-PPP for configuration of point-to-point communication and as a protocol 
carrier. 

For MIPv6 re-authentication, for example when the trust relationship between the 
2 0 mobile node and the home agent expires, there is normally already an established 
point-to-point communication between the mobile node and the PDSN. In similarity to 
the MIPv6 initiation case, the extended authentication protocol is preferably carried by 
PPP or PANA between the mobile node and the PDSN, and by an AAA framework 
protocol application such as Diameter and Radius within the AAA infrastructure to the 

2 5 AAA home network server. 

As mentioned above, the extended authentication protocol (e.g. extended EAP) can for 
example be carried between the MN 10 and the PDSN 22 (or a corresponding node) by 
PANA or PPP. Alternatively, other carrier protocols associated with satisfactory lower 

3 0 layer ordering guarantees, such as IEEE 802. IX [6], might be used to carry the 

extended authentication protocol. For 3GPP2 CDMA2000 systems, it is possible to use 
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PPP Data Link Layer protocol encapsulation with the protocol field value set to C227 
(Hex)forEAP [7]. 

It should be emphasized that although the invention is very advantageous for 
CDMA2000, it can also be used in other frameworks, such as e.g. CDMAOne and 
other (current or future) frameworks/operating modes based on CDMA technology. 

In the following paragraphs, some general aspects of the above-mentioned use of PPP 
and CSD-PPP protocols for configuration of point-to-point communication and/or as 
carriers for the extended authentication protocol (e.g. extended EAP) and/or CHAP 
will be described. 

Within 3GPP2 CDMA2000, PPP [8] can be used for setup of packet data sessions in 
connection with both Mobile and Simple IP Operations, hence the necessary PPP 
exchanges fall within the delay critical path during handoffs. The usage of PPP as 
specified in 3GPP2 CDMA2000 differs for the case of Simple IPv4/IPv6 Operation 
and Mobile IPv4 Operation. For Simple IPv4/IPv6 Operation, the authentication phase 
of PPP is used for CHAP authentication, while the NCP (IPCP/IPv6CP [9]) phase of 
PPP is used for IP address assignment. For Mobile IPv4 Operation, no authentication 
phase is carried out within PPP, and no IP address is requested at NCP (IPCP) phase of 
PPP. 

In the prior art, no specifications/definitions have been made regarding usage of PPP 
for Mobile IPv6 Operation in CDMA systems. However, a strong requirement upon 
solutions for usage of PPP for Mobile IPv6 Operation would be that they are at least 
backward compatible with the current PPP usage. This requirement is fulfilled in 
accordance with some advantageous embodiments of the present invention, which 
introduce the use of CSD-PPP in connection with Mobile IPv6 support in CDMA 
systems. Besides ensuring interoperability with current PPP usage, CSD-PPP results in 
a considerably shortened configuration time in cases where both peer protocol entities 
can be adapted according to CSD-PPP. 
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Basically, the shortened configuration time is achieved by modifying PPP. The general 
idea is that when 2 CSD-PPP peers communicate, the strict separation of LCP, 
authentication, and NCP phases of PPP will not be required anymore. That is, LCP, 
5 authentication, and NCP phases can take place concurrently to shorten the overall PPP 
configuration time. Also, where one PPP peer is and the other is not modified 
according to CSD-PPP, the modified peer will fall back to conform with PPP. This is 
carried out in a way that neither decreases nor increases the PPP configuration time. 
Information about the general CSD-PPP mechanism can for example be found in [10]. 

10 

For a better understanding of the invention, exemplary extended authentication 
protocols according to preferred embodiments of the invention will now be described. 
These exemplary embodiments use EAP as basis for the extended authentication 
protocol, creating EAP extensions while typically keeping the EAP lower layer(s) intact. 
15 It should however be understood that the invention is not limited thereto and that other 
general authentication protocols may be extended in a similar manner. For the particular 
case of EAP, the MIPv6-related information is normally incorporated as additional data 
in the EAP protocol stack, typically by means of one or more new EAP attribute(s). 
Different solutions for implementing such EAP attributes are described in the sections 

2 0 "Method-specific EAP attributes" and "Generic container attribute" below. 

Method-specific EAP attributes 

In accordance with one particular embodiment of the present invention the MIPv6- 
related information is transferred as EAP attributes in the EAP method layer of the 
25 EAP protocol stack. A new (extended) EAP authentication protocol is then defined to 
carry a method for MIPv6 authentication. The extended EAP protocol should 
preferably enable negotiation/enforcement of MIPv6 authentication and may also 
support some auxiliary information that facilitate e.g. dynamic MN home address 
allocation, dynamic HA allocation, distribution of security keys between HA and MN, 

3 0 and distribution of security keys between PAC and PAA for PANA security. 
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The new EAP attributes can for instance be new EAP TLV attributes and examplary 
protocol details will now be provided to show the overall flow and viability of concept. 

The following EAP-TLVs are examples of new EAP TLVs that may be defined under 
5 the extended EAP protocol of the present invention: 





i) 


MD5 Challenge EAP-TLV attribute 




ii) 


MD5 Response EAP-TLV attribute 




Hi) 


MIPv6 Home Address Request EAP-TLV attribute 




iv) 


MIPv6 Home Address Response EAP-TLV attribute 


10 


v) 


MIPv6 Home Agent Address Request EAP-TL V attribute 




vi) 


MIPv6 Home Agent Address Response EAP-TL V attribute 




vii) 


HA-MN Pre-shared Key Generation Nonce EAP-TLV attribute 




viii) 


IKE KeylD EAP-TL V attribute 




ix) 


HA-MN IPSec SPI EAP-TLV attribute 


15 


x) 


HA-MN IPSec Key Lifetime EAP-TLV attribute 




xi) 


PAC-PAA Pre-shared Key Generation Nonce EAP-TLV attribute 




xii) 


MIPv6 Home Address EAP-TL V attribute 




xiii) 


HA-MN Pre-shared Key EAP-TL V attribute 




xiv) 


HA-MN IPSec Protocol EAP-TLV attribute 


20 


xv) 


HA-MN IPSec Crypto EAP-TLV attribute 




xvi) 


MIP-Binding- Update EAP-TL V attribute 




xvii) 


MIP -Binding- Acknowledgement EAP-TL V attribute 



By means of (a subset or all of) these attributes, the EAP protocol can, in addition to 

2 5 the main IPv6 authentication information, carry MIPv6-related auxiliary information, 

which is a considerable advantage. The MIPv6-related auxiliary information can e.g. 
comprise requests for dynamic MN home address allocation, dynamic Home Agent 
allocation, as well as nonces/seeds for creation of necessary security keys. 

3 0 The authentication mechanism of the extended EAP protocol in accordance with the 

present invention can for example use MD5-Challenge authentication but other types 
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of protocols also lie within the scope of the invention. The following EAP-TLV 
attributes can be defined for MIPv6 authentication in the case with implementation 
through MD5-Challenge authentication: 

5 i) MD5 Challenge EAP-TL V attribute 

This represents the octet string generated randomly by the AAAh and sent to MN for 
MD5 challenge. 

ii) MD5 Response EAP-TL V attribute 
10 This represents the octet string generated as a result of the MD5 hash function with the 
shared secret key between AAAh and MN. 

In case MIPv6-related information that facilitates dynamic MN home address 
allocation is to be transferred, the following EAP-TLV attributes can for example be 
15 defined: 

Hi) MIPv6 Home Address Request EAP-TLV attribute 

This represents a request for a dynamically allocated MIPv6 home address for the 
authenticated MN. It will be requested from the AAAh by the MN when the MN 
2 0 initially requests to be authenticated and given MIPv6 service. This EAP attribute is 
normally defined as an optional attribute when the MN already has a previously 
assigned home address, such as during MIPv6 handoffs. 

iv) MIPv6 Home Address Response EAP-TLV attribute 
2 5 This represents a dynamic allocated MIPv6 home address for the authenticated MN. It 
will be notified to the MN from AAAh when the MN, which has requested a home 
address, is successfully authenticated. This attribute is normally optional when the MN 
already has a previously assigned home address, such as during MIPv6 handoffs. 
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For dynamic HA allocation, the following exemplary EAP-TLV attributes can be used: 



v) MIPv6 Home Agent Address Request EAP-TL V attribute 

This represents a request for an address of a dynamically allocated HA for the MN 
5 when successfully authenticated. It will be requested from the AAAh by the MN when 
the MN initially requests to be authenticated and given MIPv6 service. In cases where 
HA allocation is already at hand, such as when the dynamic HA discovery method of 
the MIPv6 protocol is used to allocate the HA or when the MN already has a 
previously assigned HA (e.g. during MIPv6 handoffs), this attribute is normally 
1 0 defined to be optional. 

vi) MIPv6 Home Agent Address Response EAP-TLV attribute 

This represents an address of a dynamic allocated HA for the authenticated MN. It will 
be notified to the MN from the AAAh when the MN initially requests to be 
15 authenticated and given MIPv6 service. Since the MIPv6 protocol has a dynamic home 
agent discovery method for home agent allocation, this attribute would normally be 
optional. This is also the case when the MN already has a previously assigned HA, e.g. 
during MIPv6 handoffs. 

2 0 The following exemplary EAP-TLV attributes can be defined for distribution of 
security keys between HA and MN: 

vii) HA-MN Pre-shared Key Generation Nonce EAP-TLV attribute 

This represents the octet string generated randomly by MN as a seed for generating a 
2 5 pre-shared key between HA-MN. The MN can internally generate the HA-MN pre- 
shared key by using an appropriate hash algorithm on the combination of this nonce 
and the shared key between MN and AAAh. This attribute would normally be optional 
when a valid HA-MN pre-shared key already exists, for example during MIPv6 
handoffs. 

30 
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viii) IKE Key ID EAP-TLV attribute 

This represents the ID payload defined in [11]. The KeylD is generated by the AAAh 
and sent to the MN upon successful authentication. The KeylD includes some octets 
which informs the HA about how to retrieve (or generate) the HA-MN pre-shared key 
5 from AAAh. This attribute is typically defined to be optional, and would generally not 
be needed when the MN has not submitted a HA-MN pre-shared key generation nonce, 
i.e. a valid HA-MN pre-shared key already exists, e.g. during MIPv6 handoffs. Nor 
will it normally be needed in the case when the HA-MN pre-shared key is conveyed by 
the AAAh to the HA via the AAAh-HA interface defined in [12]. 

10 

ix) HA-MN IPSec SPI EAP-TLV attribute 

This represents the Security Parameter Index for IPSec between the HA and MN. This 
attribute is generated by the HA and communicated to the MN in case the HA-MN pre- 
shared key is conveyed by the AAAh to the HA via the AAAh-HA interface defined in 
15 [12]. This attribute would typically be optional and is generally not needed when the 
MN has not submitted a HA-MN pre-shared key generation nonce, i.e. a valid HA-MN 
pre-shared key already exists, e.g. during MIPv6 handoffs. It is also not needed when 
the AAAh-HA interface defined in [12] is not used. 

2 0 x) HA-MN IPSec Key Lifetime EAP-TLV attribute 

This represents the Key Lifetime for IPSec between the HA and MN. This attribute is 
generated by the HA and communicated to the MN in case the HA-MN pre-shared key 
is conveyed by the AAAh to the HA via the AAAh-HA interface defined in [12]. This 
attribute is typically optional and generally not needed when the MN has not submitted 

2 5 a HA-MN pre-shared key generation nonce, i.e. a valid HA-MN pre-shared key already 

exists, e.g. during MIPv6 handoffs. It would typically also not be needed when the 
AAAh-HA interface defined in [12] is not used. 

In case PANA is used to carry the extended EAP protocol between MN and 

3 0 PDSN/AAA client, the following exemplary EAP-TLV attribute can be defined for 
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distribution of security keys between MN/PAC and PDSN/AAA client/PAA for PANA 
security: 

xi) P AC-PA A Pre-shared Key Generation Nonce EAP-TLV attribute 

5 This represents the octet string generated randomly by MN/PAC as a seed for 
generating the pre-shared key between MN/PAC and PDSN/AAA client/PAA. The 
MN/PAC can internally generate the PAC-PAA pre-shared key by using an appropriate 
hash algorithm on the combination of this nonce and the shared key between MN and 
AAAh. By means of this attribute satisfactory PANA security can be achieved. 

10 

Finally, the following optional EAP-TLV attributes may be defined for special MIPv6 
purposes: 

xii) MIPv6 Home Address EAP-TL V attribute 

15 This represents a dynamic allocated MIPv6 home address for the authenticated MN. It 
will be notified to the HA from AAAh in order to assign the MIPv6 home address in 
the HA, when the MN, which has requested for one, has been successfully 
authenticated. 

2 0 xiii) HA-MN Pre-shared Key EAP-TLV attribute 

This represents a dynamically generated pre-shared key between HA-MN. It will be 
notified to the HA from the AAAh when a MN requests to be authenticated and given 
MIPv6 service. The AAAh can internally generate the HA-MN pre-shared key by 
using an appropriate hash algorithm on the combination of the nonce given by the HA- 

2 5 MN Pre-shared Key Generation Nonce EAP-TLV Attribute and the shared key 

between MN and AAAh. This attribute is optional when a valid HA-MN pre-shared 
key already exists. 

xiv) HA-MN IPSec Protocol EAP-TL V attribute 

3 0 This represents the IPSec Protocol (e.g. ESP or AH) between HA-MN. This is 

informed to the MN for the case when the HA-MN pre-shared key is conveyed by the 
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AAAh to the HA. This attribute is optional and is generally not needed when the MN 
did not submit a HA-MN pre-shared key generation nonce, i.e., a valid HA-MN pre- 
shared key already exists, e.g., during MIPv6 handoffs. 

5 xv) HA-MN IPSec Crypto EAP-TL V attribute 

This represents the Cryptographic Algorithm for IPSec between HA-MN. This is 
informed to the MN for the case when the HA-MN pre-shared key is conveyed by the 
AAAh to the HA. This attribute is optional and is generally not needed when the MN 
did not submit a HA-MN pre-shared key generation nonce, i.e., a valid HA-MN pre- 
1 0 shared key already exists, e.g., during MIPv6 handoffs. 

xvi) MIP-Binding- Update EAP-TL V attribute 

This represents the Binding Update packet generated by the MN. This is forwarded to the 
HA via AAAh from the MN in the authentication and authorization exchanges. This 
15 attribute is optional and is generally not needed when the MN sends Binding Update 
packet directly to HA. 

xvii) MIP-Binding-Acknowledgement EAP-TL V attribute 

This represents the Binding Acknowledgement packet generated by the HA. This is 
2 0 forwarded to the MN via AAAh from the HA in the authentication and authorization 
exchanges. This attribute is optional and is generally not needed when the HA sends 
Binding Acknowledgement packet directly to MN. 

A summary matrix of the described examplary EAP-TL Vs for transfer of MIPv6- 
2 5 related information is given in Table 1 . 
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Table 1 



MIPv6-reIated EAP Type-Length-Values 


Source 


Destination 


Purpose 


MDS Chailenge EAP-TLV attribute 


AAAh 


MN 


issue challenge 


MD5 Response EAP-TLV attribute 


MN 


AAAh 


provide response to challenge 


MIPv6 Home Address Request EAP-TLV attribute 


MN 


AAAh 


request MN home address 


MIPv6 Home Address Response EAP-TLV attribute 


AAAh 


MN 


assign MN home address 


* MIPv6 Home Agent Address Request EAP-TLV attribute 


MN 


AAAh 


request HA address 


• A/TTPvfi Hnmp A lip tit AHHr/»<rc Rpcnnncn T7 AP-TT V affrihitfA 
4VUTVU jnvJiilc ^YgCIlL ZlUUlCaa XvCopUIlAC I-//VT 1 V dlLUUUtC 


AAAh 


MN 


assign HA address 


HA-MN Pre-shared Key Generation Nonce EAP-TLV attribute 


MN 


AAAh 


seed for HA-MN key 


IKE KeylD EAP-TLV attribute 


AAAh 


MN 


info for obtaining HA-MN pre-shared key from AAAh 


HA-MN IPSec SPI EAP-TLV attribute 


HA 


MN via AAAh 


assign SPI 


HA-MN IPSec Key Lifetime EAP-TLV attribute 


HA 


MN via AAAh 


assign IP Sec Key lifetime 


PAC-PAA Pre-shared Key Generation Nonce EAP-TLV attribute 


MN 


AAAh 


seed for PAC-PAA key 


MIPv6 Home Address EAP-TLV attribute 


AAAh 


HA 


assign MN Home Address 


HA-MN Pre-shared Key EAP-TLV attribute 


AAAh 


HA 


assign HA-MN key 


HA-MN IPSec Protocol EAP-TLV attribute 


HA 


MN via AAAh 


assign IPSec Protocol 


HA-MN IPSec Crypto EAP-TLV attribute 


HA 


MN via AAAh 


assign IPSec Crypto 


MIP-Binding-Update EAP-TLV attribute 


MN 


HA via AAAh 


piggyback MIP binding update 


MIP-Binding-Acknowledgement EAP-TLV attribute 


HA 


MN via AAAh 


piggyback MIP binding ack. 







Exemplary schemes for handling MIPv6 initiation according to the invention are 
5 provided in the signaling flow diagrams Figs. 3 and 4. Transfer of MIPv6-related 
information implemented using the above-described exemplary EAP TLV attributes 
between the MN, access router, AAAh and HA is shown. The access router can for 
example comprise PDSN functionality, in this respect corresponding to AAA client 
functionality. The term "EAP/MIPv6" refers to the new extended EAP protocol that is 

10 used to transfer the MIPv6-related information over the AAA infrastructure in 
preferred embodiments of the invention. The particular examples of Figs. 3 and 4 
relate to MIPv6 AAA using a combination of PANA and Diameter as carrier protocols, 
but the invention is not limited thereto as will later be appreciated from the flow 
diagrams of Figs. 5-11. The flow diagram in Fig. 3 illustrates MIPv6 initiation with use 

15 of an AAAh-HA interface according to [12] for exchange of a HA-MN pre-shared key. 
Another embodiment of the MIPv6 initiation mechanism, illustrated in Fig. 4, uses IKE 
KeylD for exchange of a HA-MN pre-shared key. 

Generic container attribute 
2 0 In another embodiment of the present invention, the MIPv6-related information is 
carried in a generic container EAP attribute that preferably can be used together with 
any EAP method included in any EAP packet. EAP is thus augmented with a generic 
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container attribute (also referred to as GCA) that can be used to carry non-EAP related 
data, more specifically MIPv6-related data, between the MN 10 and the AAAh 34. 
This allows the MN and the AAAh to communicate in a manner that is transparent to 
the visited domain, including the access network, the PDSN/AAA client and the AAAv 
5 24. Thus, just as in the above described case with method-specific EAP TLV attributes, 
the AAA infrastructure is exploited to support MIPv6 related features in a way that is 
preferably transparent to the visited domain. The solution can for example support 
dynamic HA assignment in the home network (including the home network prefix); 
distribution of MN-HA credentials; MIPv6 message encapsulation; a single 
10 authenticating entity for network access and MIPv6; and/or stateful dynamic home 
address assignment. 

When using the generic container attribute, EAP is preferably used as a carrier of 
MIPv6 related data without creating a new EAP method. However, another variant is 
15 to introduce the generic container attribute in one (or more) EAP method(s) on the 
method layer of the protocol stack. A new EAP method for transfer of the MIPv6- 
related data is hereby defined and the generic container attribute is used in this new 
EAP method. In other words, the generic container attribute can be method specific in 
a manner similar to that described in association with the EAP TLV attributes. 

20 

As before, EAP is carried in an AAA framework protocol, such the Diameter EAP 
Application [13] or RADIUS [14, 15], between the PDSN/AAA client 22 and the 
AAAh 34. However, it is also proposed to use a new/extended Diameter application 
(or RADIUS extended with new attributes) to exchange AAA and MIPv6 data between 

2 5 the AAAh 34 and the HA 36. This Diameter application can be an extended version of 

an existing Diameter application, e.g. the Diameter EAP Application [13], or a new 
Diameter application. This new/extended new Diameter application (or extended 
RADIUS) is henceforth referred to as a "Diameter MIPv6 application". It should be 
emphasized that this reference is used only for simplicity and does not exclude use of 

3 0 extended RADIUS or other methods for AAAh-HA communication. 
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Preferred ways of handling the authentication procedure, including assignment of 
home agents and home addresses, using generic container attributes in accordance with 
the present invention will now be described, primarily using the EAP protocol as an 
example and with reference to Fig. 2. 

5 

During the authentication procedure the MN 10 indicates to the AAAh 34 through the 
generic container attribute that it wishes to have a HA 36 assigned in the home 
network. There are now three main cases to consider: 

A) The MN already has a valid home address. 
10 B) Stateful dynamic home address assignment is used. 

C) Stateless home address autoconfiguration is used. 

If the MN 10 already has a home address (A), it sends it to the AAAh 34 together with 
a request for a home agent address. If the AAAh determines that the home address is 

15 valid, it selects a HA 36 and generates MN-HA credentials, such as a pre-shared key or 
data from which a pre-shared key can be derived. The home address of the MN and the 
generated MN-HA credentials can for example be sent to the selected HA via the 
Diameter MIPv6 Application. The address of the selected HA and the generated 
credentials (or data from which the generated credentials can be derived) are sent to the 

2 0 MN via the extended authentication protocol e.g. extended EAP. If, for example, a pre- 
shared key is sent to the MN, it has to be protected (encrypted and integrity protected) 
by keys derived from the security relation between the AAAh and the MN (e.g. session 
keys produced during the authentication procedure). Otherwise the pre-shared key 
should not be sent explicitly. Instead, a piece of data from which the pre-shared key (or 

2 5 other credentials) can be derived based on the MN-AAAh security relation, e.g. a 
nonce, can be sent (e.g. a RAND parameter to be fed into the AKA or GSM 
authentication algorithm if EAP AKA [16] or EAP SIM [17] is used). If cryptographic 
protection is applied to the credentials, it may be convenient to use the same kind of 
protection for the HA address and the home address. 
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When the network access authentication is finalized and the MN is authorized to 
access the network beyond the access server (e.g. a WLAN AP or an access router), the 
MN can establish IPsec SAs towards the assigned HA via IKE (e.g. IKEvl or IKEv2) 
procedures based on the obtained credentials. This procedure and the subsequent 
5 BU/BA exchange are carried out using conventional IKE and MIPv6 mechanisms. 

If the MN either includes no home address at all or includes a home address that is no 
longer valid (e.g. due to MIPv6 home network renumbering) in its request for a home 
agent, a home address should be assigned to the MN. For this, the present invention 
10 proposes mechanisms for stateful dynamic home address assignment (B) or stateless 
home address autoconfiguration (C). 

The present invention enables stateful dynamic home address assignment (B), whereby 
the AAAh 34 assigns a home address to the MN 10. The AAAh also generates MN- 

15 HA credentials, which it preferably sends to the selected HA 36 together with the 
assigned home address via the Diameter MIPv6 Application. The AAAh also sends the 
assigned home address together with the address of the assigned HA and the generated 
credentials (or data from which the generated credentials can be derived) to the MN via 
the extended authentication protocol of the invention, exemplified by extended EAP. 

2 0 As in case (A), either the MN-HA credentials are protected before being sent over the 
extended authentication protocol or, alternatively, data from which the credentials can 
be derived, e.g. a nonce, is sent instead of the actual credentials. After the network 
access authentication is concluded, the MN can establish IPsec SAs and perform 
BU/BA exchange towards the assigned HA using conventional IKE and MIPv6 

2 5 mechanisms. 

In case stateless autoconfiguration of home addresses is used (C), the behavior 
depends on the number of roundtrips of the selected EAP method. In response to the 
request for a HA 36 the AAAh 34 returns a HA address together with credentials (or 

3 0 data from which the credentials can be derived) to the MN 10. The MN typically uses 

the prefix of the received HA address to build a home address. If the EAP procedure is 



WO 2004/112349 24 PCT/SE2004/000950 

not finalized, i.e. if the HA address was conveyed in an EAP Request packet and not in 
an EAP Success packet, the MN sends its home address to the AAAh. The AAAh then 
sends the received home address together with the credentials to the assigned HA. The 
HA should then perform DAD for the received home address on its subnet. Provided 
5 that the DAD is successful, the MN and the HA will later be able to establish IPsec 
SAs and exchange BU/BA packets using conventional IKE and MIPv6 mechanisms. 

If the MN instead receives the HA address in the final packet of the EAP procedure 
(i.e. the EAP Success packet), it cannot convey its newly built home address to the 
1 0 AAAh. A way to solve this problem of an insufficient number of EAP roundtrips is to 
let the AAAh increase the number of EAP roundtrips using EAP Notification 
Request/Response packets for enabling transfer of the generic container attribute. 

A major advantage of the described mechanisms is that they simplify configuration of 
15 both the MN 10 and the HA 36. The MN can leverage its network access configuration 
parameters (the NAI and the MN-AAAh security relation) and no MIPv6 specific 
configuration is needed. The HA does not need any MN specific configuration, since 
the HA- AAAh security relation is enough. The AAAh 34 can, to a large extent, form a 
single authenticating entity for both network access and MIPv6 (although IKE 
2 0 authentication may still be performed in the HA based on data received from the 
AAAh). 

If a valid MN-HA security association (e.g. IPsec SA) already is present, the MN 10 
does not need to request a HA address from the AAAh 34. Instead it may reduce the 

2 5 overall access delay by encapsulating the BU in the generic container attribute and 

send it to the AAAh via the extended authentication protocol. The AAAh preferably 
encapsulates the BU in a Diameter MIPv6 Application message and sends it to the HA 
36 indicated by the destination address of the BU. The HA responds with a BA and the 
AAAh relays the response to the MN. The encapsulated BU and BA are protected by 

3 0 the MN-HA IPsec SAs. According to a preferred embodiment, the AAAh checks that 

the HA address is valid and that the MIPv6 home network has not been renumbered 
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before sending the BU to the HA. Should the HA address not be valid, the AAAh 
normally indicates the error to the MN and assigns a HA as described above, i.e. the 
AAAh sends a HA address, credentials (or data from which the credentials can be 
derived) and possibly a home address to the MN etc. 

The Diameter MIPv6 Application may sometimes be used also to convey accounting 
data generated in the HA 36. This can be useful for instance when reverse tunneling is 
employed and the home operator wants to be able to verify the accounting data that is 
received from the AAAv 24. 

Now, some exemplary implementations of a generic container attribute (GCA) in 
accordance with the present invention will be described more in detail. 

Preferably the GCA attribute is available to all methods and can be included in any 
EAP message, including EAP Success/Failure messages. This implies that it should be 
a part of the EAP layer rather than the EAP method layer (see [18]). Hereby, an 
important issue to consider is backward compatibility in terms of the MN and the EAP 
authenticator (typically the EAP entity in the Network Access Server (NAS)). The use 
of the generic container attribute in the above examples assumes that the new attribute 
is introduced in EAP in a manner that is backward compatible and transparent to the 
EAP authenticator. Introducing a GCA with these properties requires some special 
considerations, which will be elaborated in the following paragraphs. 

The format of the GCA could for example be a two-byte GCA length indicator 
followed by a GCA recipient indicator and a GCA payload. The GCA recipient 
indicator then indicates to what internal entity the EAP module is to send the payload 
of a received GCA (i.e. this indicator corresponds to the protocol/next header field in 
the IP header or the port number in the UDP and TCP headers). The GCA payload is a 
generic chunk of data not interpreted by the EAP layer. Absence of GCA can for 
example be indicated by a GCA length indicator set to zero. 
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To achieve backward compatibility, the GCA should be included in the EAP packets in 
a way that is transparent to pass-through EAP authenticators. A pass-through EAP 
authenticator is an EAP authenticator residing in a NAS, which relays EAP packets 
between the MN and a back-end EAP authentication server (an AAA server). The 
5 pass-through behavior of an EAP authenticator is to relay EAP packets based on the 
EAP layer header, i.e. the Code, Identifier and Length fields in the beginning of the 
EAP packets. This implies that the desired transparency and hence backwards 
compatibility can be achieved by locating the GCA after the EAP layer header, i.e. 
after the Code, Identifier and Length fields. 

10 

However, an EAP authenticator normally also has to check the Type field (following 
the EAP layer header) of EAP Response packets in order to identify EAP Identity 
Response packets, from which the NAI that is needed for the AAA routing is 
extracted. When the EAP authenticator identifies an EAP Identity Response packet, it 
1 5 extracts the NAI from the Type-Data field following the Type field. Hence, placing the 
GCA immediately after the EAP layer header (in a manner that is transparent to the 
EAP authenticator) is only possible in EAP Request packets. Therefore, it would 
normally be preferred to arrange the GCA after the Type field or even after the 
(possibly NULL-terminated) Type-Data field. 

20 

Placing the GCA immediately after the Type field would enable the use of the GCA in 
all EAP Response packets but EAP Identity Response packets. The use of the GCA in 
EAP Identity Response packets would be prohibited, because from these packets the 
EAP authenticator needs to extract the NAI from the Type-Data field, which a legacy 
25 EAP authenticator would expect to find immediately after the Type field. This can be a 
significant restriction for the GCA usage considering that EAP normally has rather few 
roundtrips. Possibly, the GCA could be placed after a NULL-terminated Type-Data 
field in the EAP Identity Response packet, while keeping its position after the Type 
field in other EAP packets. 

30 



WO 2004/112349 27 PCT/SE2004/000950 

However, it would often be desirable with a GCA position that can be used 
consistently in all EAP packets. It follows from the above discussion that a position in 
which the GCA could be placed in all EAP packets in a backwards-compatible manner 
is at the end of the packet, more or less as a trailer. However, this GCA location would 
5 cause problems for those EAP packets that do not have explicit length indicators for 
the Type-Data parameter(s), but rely on the Length field in the EAP layer header. For 
such packets, it would generally not be possible to distinguish between the GCA and 
the Type-Data field. 

10 To overcome this problem, it is according to a particular preferred GCA embodiment 
proposed to reverse the order of the GCA length indicator, the GCA recipient indicator 
and the GCA payload such that the GCA length indicator appears last. By placing the 
GCA at the end of an EAP packet, the last two octets of the EAP packet (whose length 
is indicated by the Length field in the EAP layer header) would always be the GCA 

15 length indicator. Unless the GCA length indicator is zero, the GCA recipient indicator 
appears before the GCA length indicator and the GCA payload (whose size is 
determined from the GCA length indicator) is located before the GCA recipient 
indicator. In this way, it is always be possible to identify the GCA of an EAP packet 
and to distinguish the GCA from the Type-Data field, while the use of the GCA would 

2 0 still be transparent for a pass-through EAP authenticator. 

Backward compatibility with the GCA embodiment of Fig. 6 further presumes that the 
EAP authenticator does not try to extract information from the EAP Request/Response 
packets (except the EAP layer header and the NAI) and that it accepts that the Length 

2 5 field in the Success/Failure packets indicates a value greater than 4. 

An alternative way of coping with the backwards compatibility problem is to use EAP 
GCA Test Request/Response packets, i.e. new EAP packets with newly defined values 
of the Type field, to determine whether the MN supports the GCA. Before or after the 

3 0 initial EAP Identity Request/Response packet exchange, an EAP authenticator 

supporting the GCA then sends an EAP GCA Test Request packet, i.e. an EAP 



WO 2004/112349 



28 



PCT/SE2004/000950 



Request packet with a dedicated Type value, to the MN. (The EAP peer state machine 
in [19] indicates that both the alternative sending times are feasible.) If the MN 
supports the GCA, it responds with an EAP GCA Test Response packet. Otherwise, 
the MN interprets the EAP GCA Test Request packet as a request to use an unknown 
EAP method and therefore the MN responds with an EAP Nak packet. Based on the 
response from the MN, the EAP authenticator determines whether the MN supports the 
GCA. 

A MN supporting GCA can determine whether the EAP authenticator supports the 
GCA from the presence or absence of the EAP GCA Test Request packet. If an EAP 
GCA Test Request packet is received when expected i.e. before or after the EAP 
Identity Request/Response exchange, the EAP authenticator is assumed to support the 
GCA. Otherwise, the MN draws the conclusion that the EAP authenticator does not 
support the GCA. 

If both the MN and the EAP authenticator support the GCA, it can be placed after the 
EAP layer header in all subsequent EAP packets (with the original order of the GCA 
components). Otherwise, the GCA may still be included in the EAP packets that allow 
it to be included in the backward-compatible manner described above. 

There are some limitations to the described alternative way of dealing with the 
backward compatibility problem. Firstly, one MN-EAP authenticator roundtrip is 
wasted. Moreover, if the EAP GCA Test Request/Response packets are exchanged 
after the initial EAP Identity Request/Response packet exchange, the GCA cannot be 
used in the EAP Identity Response packet. This embodiment may also require that the 
EAP authenticator (e.g. the NAS) uses a modified version of EAP, such as EAPv2. 
Accordingly, although other alternatives are possible, the preferred way of arranging 
the GCA in EAP packets would typically be as a trailer at the end of the packet with 
the GCA length indicator last, after the GCA payload and the GCA recipient indicator. 
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If the number of EAP roundtrips is not enough for the data that is exchanged in the 
GCA, the AAAh may increase the number of EAP roundtrips through EAP 
Notification Request/Response exchanges for the purpose of conveying the GCA. 

If the GCA is made method specific, the GCA does not introduce any problems related 
to backward compatibility, since it will then normally be a part of the Type-Data field. 

Exemplary implementations specifically tailored for CDMA frameworks 
In the following, a number of exemplary embodiments of MIPv6 implementations in 
accordance with the invention will be described. General reference is made to the 
architectures of Figs. 1 and 2. To show the overall flow and viability of concept, 
reference will also be made to the exemplary signaling flow diagrams in Figs. 5-1 1 . 

As compared to the above examples of Fig. 3 and 4, the signaling flows of Figs. 5-11 
are more specifically tailored for CDMA frameworks, and CDMA2000 in particular. 
In these flow diagrams, the AAAh-HA or MN-HA interaction has for simplicity been 
omitted. It is assumed that some form of HA-MN key distribution takes place, e.g. as 
illustrated in Fig. 3 and 4. 

The term "EAP/MEV6" is here used to denote the new extended EAP protocol that is 
used to transfer the MIPv6-related information over the AAA infrastructure in preferred 
embodiments of the invention. EAP/MIPv6 can for example use the above-described 
new EAP TLV attributes or generic container attribute to carry the MIPv6-related data. 

The exemplary schemes for authentication and authorization support for Mobile IP 
version 6 (MIPv6) in a CDMA system are: 

(A) MIPv6 initiation with MIPv6 authentication using PPPv6 [9] in a manner 
similar to the PPP usage specified in 3GPP2 Mobile IPv4 Operation 

(B) MIPv6 initiation with MIPv6 authentication using PPPv6 as defined in IETF 

(C) MIPv6 initiation with MIPv6 authentication using CSD-PPP 
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(D) MIPv6 hand-in with MIPv6 authentication using PPPv6 as specified in 3GPP2 
Simple IPv6 Operation 

(E) MIPv6 hand-in with MIPv6 authentication using CSD-PPP 

(F) MIPv6 re-authentication using PANA 



MIPv6 initiation (A, B, C) is generally performed when there is no prior MIPv6 
service available, and the mobile wants to receive MIPv6 service - the mobile sends 
the desired MIPv6 parameters to the network in the initiation request. MIPv6 hand-in 
10 (D, E) is used in cases where there is prior MIPv6 service ongoing, and a handover 
takes place - there is a need to reestablish the necessary bearers for MIPv6 service to 
be able to continue. MIPv6 re-authentication (F, G) typically occurs when the trust 
relationship between the mobile and the Home Agent expires and there is need to 
renew this to continue the MIPv6 service. 



(A) MIPv6 initiation with MIPv6 authentication using PPPv6 in a manner similar to 
the PPP usage specified in 3GPP2 Mobile IPv4 Operation 

- The MN, RAN, and PDSN setup the necessary radio links and A10/A11 



5 



(G) MIPv6 re-authentication using PPP 



15 



links according to the 3GPP2 standards. 



20 



- The PDSN initially offers the MN the possibility to use CSD-PPP. This is 
carried out by sending a standard PPP/LCP packet first, followed 
immediately by a PPP/CHAP packet and then a PPP/EAP packet, see Fig. 
12. However, the MN opts for using PPP and ignores (silently discards) 
messages that are not PPP/LCP. 



25 



- No authentication phase is carried out within PPPv6. 



- No IP address is requested at NCP (IPv6CP) phase within PPPv6 



- Following PPP, IP packets (e.g., PANA, DHCP) are not sent until NCP 
(IPv6CP) phase is completed. 



30 



- PANA exchanges start after IPv6CP is completed. PANA protocol is used 
to carry EAP between MN and PDSN. DHCP is also sent concurrently to 
request global IP address (with a subsequent DHCP reply). 
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- EAP/MIPv6 is used to carry information that facilitate MIPv6 
authentication, dynamic MN home address allocation, etc. 

- PANA protocol is used to carry EAP between MN and PDSN. 

- Diameter [e.g. 13] is used to carry EAP between PDSN and AAAh (other 
protocols like Radius are also possible). 

- The rest of the sequence may for instance follow the extended EAP 
signaling flow schemes for the MIPv6 initiation case of Figs. 3 and 4. 

- DHCP [20] can be used for stateful IP address autoconfiguration. (An 
alternative is to use stateless IP address autoconfiguration, with router 
solicitation / advertise + duplicate address detection, but this will typically 
add at least one more RTT to the signaling flow.) 

- About 6.5 round trip time (RTT) is generally needed from after successful 
setup of A10 connection to before MIPv6 Binding Update is sent by MN to 
HA. 

An exemplary embodiment of a scheme for MIPv6 initiation with MIPv6 
authentication using PPPv6 in a manner similar to the PPP usage specified in 3GPP2 
Mobile IPv4 Operation is illustrated in the signaling flow diagram of Fig. 5. 

(B) MIPv6 initiation with MIPv6 authentication using PPPv6 as defined in IETF 

- The MN, RAN, and PDSN setup the necessary radio links and A10/A11 
links according to the 3GPP2 standards. 

- The PDSN initially offers the MN the possibility to use CSD-PPP. This is 
carried out by sending a standard PPP/LCP packet first, followed 
immediately by a PPP/CHAP packet and then a PPP/EAP packet (Fig. 12). 
However, the MN opts for using PPP and ignores (silently discards) 
messages that are not PPP/LCP. 

- The authentication phase within PPP is used for EAP authentication. 

- EAP/MIPv6 is used to carry information that facilitate MIPv6 
authentication, dynamic MN home address allocation, etc. 
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- Diameter is used to carry EAP between PDSN and AAAh (other protocols 
like Radius are also possible). 

- The extended EAP (i.e. EAP/MIPv6) signaling flow schemes may for 
example be as for the MIPv6 initiation case of Figs. 3 and 4. 

5 - After the PPP authentication phase, the NCP (IPv6CP) phase within PPP is 

used for Interface-ID assignment. 

- Following PPP, IP packets (e.g., Router Solicitation) are not sent until NCP 
(IPv6CP) phase is completed. 

- IPv6 Router Solicitation is sent after the IPv6CP is completed. Router 
10 Solicitation / Advertisement is used to obtain the global prefix for IPv6 

address. 

- About 5.5 RTT is generally needed from after successful setup of A10 
connection to before MIPv6 Binding Update is sent by MN to HA. 

15 An exemplary embodiment of a scheme for MIPv6 initiation with MIPv6 
authentication using PPPv6 as defined in IETF is illustrated in the signaling flow 
diagram of Fig. 6. 

(C) MIPv6 initiation with MIPv6 authentication using CSD-PPP 
2 0 - The MN, RAN, and PDSN setup the necessary radio links and AlO/All 

links according to the 3GPP2 standards. 

- The PDSN initially offers the MN the possibility to use CSD-PPP. This is 
carried out by sending a standard PPP/LCP packet first, followed 
immediately by a PPP/CHAP packet and then a PPP/EAP packet (Fig. 12). 

2 5 The MN opts for CSD-PPP using PPP/EAP because it wants to initiate 

MIPv6. PPP/LCP is processed concurrently. The PPP/CHAP packet is 
silently discarded. 

- According to CSD-PPP, PPP/IPv6CP and IP packets (e.g., Router 
Solicitation) can be sent concurrently with PPP/EAP packets. 

3 0 - EAP/MIPv6 is used to carry information that facilitate MIPv6 

authentication, dynamic MN home address allocation, etc. 
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- Diameter is used to carry EAP between PDSN and AAAh (other protocols 
like Radius are also possible). 

- The extended EAP (i.e. EAP/MIPv6) signaling flow schemes may for 
example correspond to the MIPv6 initiation case of Figs. 3 and 4. 

- The IPv6CP is used for Interface-ID assignment. 

- Router Solicitation / Advertisement is used to obtain the global prefix for 
IPv6 address. 

- About 2.5 RTT is generally needed from after successful setup of A10 
connection to before MIPv6 Binding Update is sent by MN to HA. Gains 
along a factor of 3-4 RTT are obtainable with respect to the above schemes 
(A) and (B) where CSD-PPP is not used. 

An exemplary embodiment of a scheme for MIPv6 initiation with MIPv6 
authentication using CSD-PPP is illustrated in the signaling flow diagram of Fig. 7. 

(D) MIPv6 hand-in with MIPv6 authentication using PPPv6 as specified in 3GPP2 
Simple IPv6 Operation 

- The MN, RAN, and PDSN setup the necessary radio links and A10/A11 
links according to the 3GPP2 standards. 

- The PDSN initially offers the MN the possibility to use CSD-PPP. This is 
carried out by sending a standard PPP/LCP packet first, followed 
immediately by a PPP/CHAP packet and then a PPP/EAP packet (Fig. 12). 
However, the MN opts for using PPP and ignores (silently discards) 
messages that are not PPP/LCP. 

- There is no need to distinguish signaling flows for Simple IPv6 and MIPv6 
hand-in. Simple IPv6 procedures that are currently specified in 3GPP2 [2] is 
reused. 

- The authentication phase in PPP is used for CHAP authentication. 

- The NCP (IPv6CP) phase within PPP is used for Interface-ID assignment. 

- Following PPP, IP packets (e.g., Router Solicitation) are not sent until 
IPv6CP phase is completed. 
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- IPv6 Router Solicitation is sent after the IPv6CP is completed. Router 
Solicitation / Advertisement is used to obtain the global prefix for IPv6 
address. 

- About 4.5 RTT is generally needed from after successful setup of A10 
5 connection to before MIPv6 Binding Update is sent by MN to HA. 

An exemplary embodiment of a scheme for MIPv6 hand-in with MIPv6 authentication 
using PPPv6 as specified in 3GPP2 Simple IPv6 Operation is illustrated in the 
signaling flow diagram of Fig. 8. 

10 

(E) MIPv6 hand-in with MIPv6 authentication using CSD-PPP 

- The MN, RAN, and PDSN setup the necessary radio links and A10/A11 
links according to the 3GPP2 standards. 

- The PDSN initially offers the MN the possibility to use CSD-PPP. This is 
15 carried out by sending a standard PPP/LCP packet first, followed 

immediately by a PPP/CHAP packet and then a PPP/EAP packet (Fig. 12). 
The MN opts for CSD-PPP using PPP/CHAP because it wants MIPv6 Hand- 
in. PPP/LCP is processed concurrently. The PPP/EAP packet is silently 
discarded. 

2 0 - According to CSD-PPP, PPP/IPv6CP and IP packets (e.g., Router 

Solicitation) can be sent concurrently with PPP/CHAP packets. 

- The IPv6CP is used for Interface-ID assignment. 

- Router Solicitation / Advertisement is used to obtain the global prefix for 
IPv6 address. 

2 5 - About 1.5 RTT is generally needed from after successful setup of A10 

connection to before MIPv6 Binding Update is sent by MN to HA. Gains 
along a factor of 3 RTT are obtainable with respect to scheme (D) where 
CSD-PPP is not used. 

3 0 An exemplary embodiment of a procedure for MIPv6 hand-in with MIPv6 

authentication using CSD-PPP is illustrated in the signaling flow diagram of Fig. 9. 
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(F) MIPv6 re-authentication using PANA 

- The necessity for MN to initiate MIPv6 re-authentication arises due to, e.g., 
expiration of the HA-MN IPSec Key Lifetime. 

5 - PANA is used to carry EAP. 

- EAP/MIPv6 is used to carry information that facilitates MIPv6 re- 
authentication. 

- Diameter is used to carry EAP between PDSN and AAAh (other protocols 
like Radius are also possible). 

10 - The extended EAP (i.e. EAP/MIPv6) signaling flow schemes may for 

example correspond to the MIPv6 initiation case of Figs. 3 and 4. 

- About 4 RTT is generally needed from PANA initiation to before MIPv6 
Binding Update is sent by MN to HA. 

15 An exemplary embodiment of a scheme for MIPv6 re-authentication using PANA is 
illustrated in the signaling flow diagram of Fig. 10. 

(G) MIPv6 re-authentication using PPP 

- The necessity for MN to initiate MIPv6 re-authentication arises due to, e.g., 
2 0 expiration of the HA-MN IPSec Key Lifetime. 

- The authentication phase of PPP is used for EAP authentication. 

- EAP/MIPv6 is used to carry information that facilitates MIPv6 re- 
authentication. 

- Diameter is used to carry EAP between PDSN and AAAh (other protocols 
2 5 like Radius are also possible). 

- The extended EAP (i.e. EAP/MIPv6) signaling flow schemes may for 
example correspond to the MIPv6 initiation case of Figs. 3 and 4. 

- About 3 RTT is generally needed from PPP/LCP Configure-Req to before 
MIPv6 Binding Update is sent by MN to HA. 
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An exemplary embodiment of a scheme for MIPv6 re-authentication using PPP is 
illustrated in the signaling flow diagram of Fig. 11. 

From the above description follows that preferred embodiments of the method for 
5 MIPv6 authentication in accordance with the invention use an extended authentication 
protocol like extended EAP for MIPv6 initiation (A, B, C) and MIPv6 re- 
authentication (F, G). For MIPv6 hand-in (D, E), CHAP can with advantage be used, 
and router solicitation/advertisement for obtaining the global prefix for IPv6 addresses. 

10 As illustrated by the above authentication schemes, the invention is not limited to 
particular protocols. Scheme F (Fig. 10), for example, illustrates that PANA in some 
respects constitutes an alternative to PPP of scheme G (Fig. 11). Authentication 
procedures using protocols and protocol combinations with functionality 
corresponding to the illustrated examples also lie within the scope of the invention. 

15 

It should be noted that all combinations of the respective schemes for MIPv6 initiation, 
MIPv6 hand-in and MIPv6 re-authentication are possible. Which particular schemes 
that are to be chosen in a particular implementation should normally be decided based 
on a number of factors, of which the setup time may be one. 

20 

It should be mentioned that the present invention also can be used in connection with a 
so-called "local Home Agent" in the visited network. The local HA can be used for 
example when there is no HA 36 in the home network. Instead a local HA is 
dynamically assigned to a roaming MN in the visited domain. The MIPv6 AAA 

2 5 signaling can then follow the path MN <h> RN <h> PDSN <-> AAAv <-> AAAh <r> 

AAAv <h> local HA. It is for example possible to use an extended Diameter application 
between the AAAh and the AAAv as well as between the AAAv and the local HA. 
Such a solution would generally require MIPv6 support in the AAAv. 

3 0 Accordingly, a major advantage offered by the present invention is that it enables 

MIPv6 authentication and authorization in frameworks like CDMA2000. A complete 
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MIPv6 AAA solution for CDMA systems is achieved by means of an extended 
authentication protocol that operates end-to-end in a manner transparent to the visited 
domain, including e.g. the access network, the PDSN and the AAA server in the visited 
network. This makes it possible to let some or all of these nodes act as mere pass- 
through agents, which is a considerable advantage. It will also be possible to apply 
prior encryption between MN and AAAh since the exchanges are not visible over the 
air interface. This means that satisfactory security against eavesdropping, man-in-the- 
middle and other attacks can be maintained for mobile nodes roaming in foreign 
CDMA networks. In addition, it makes it possible for an operator to deploy the 
solution without relying on upgrades in its roaming partners 1 networks. 

Another benefit is that shorter packet data session setup times can be achieved by 
means of the invention. By allowing different procedures for the MIPv6 hand-in case 
and the MIPv6 initiation case, respectively, such as EAP/MIPv6 for initiation and 
CHAP for hand-in, it is possible to shorten packet data session setup times for the 
MIPv6 hand-in case compared with the MIPv6 initiation case. In this way, at least 1 
RTT can be saved by allowing different procedures for the two cases. Moreover, using 
CSD-PPP considerably shortens the packet data session setup time compared with 
PPP. Gains along a factor of 3-4 RTT are obtainable. 

The session setup time can, where appropriate, also be shortened by using PPP instead 
of e.g. PANA, since procedures involving PANA generally take up more RTT to 
complete compared with procedures where only PPP is used. However, even though 
PPP may be superior with regard to session setup times, it may still be appropriate to 
use procedures involving PANA, for instance in case a layer-3-only solution is 
preferred. 

Another advantageous feature of the invention is that the need for distinguishing 
between signaling flows for Simple IPv6 and MIPv6 hand-in, for example, can be 
eliminated. Both can use common authentication procedures. Simple IPv6 procedures 
that are currently specified in 3GPP2 can be reused. 
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Summarizing some of the above aspects, it can be seen that Fig. 14 is a schematic flow 
diagram of a basic example of a method for supporting MIPv6 service for a mobile 
node in a CDMA system. In this example, the information transfer and actions 
5 indicated in steps S1-S4 relate to authentication of the mobile node (SI), establishment 
of MN-HA security association (S2), MIPv6 configuration (S3) and MIPv6 binding 
(S4). The steps S2-S3 are commonly referred to as the authorization phase. The steps 
S1-S4 may, if desired, be executed more or less in parallel to allow shortening of the 
overall setup times. In step SI, information is transferred over the AAA infrastructure 

10 for authenticating the mobile node at the home network side. In step S2, MIPv6-related 
information is transferred to immediately establish, or to enable future establishment 
of, a security association between the MN and HA. In step S3, additional MIPv6 
configuration is performed, for example by transferring configuration parameters to the 
mobile node and/or home agent for suitable storage therein. In step S4, the mobile 

1 5 node sends a binding update and a MIPv6 binding is established in the HA. 

Detailed exemplary embodiments of the present invention have primarily been 
discussed with reference to the current EAP [7, 18]. However, it should be understood 
that the invention very well is applicable onto other EAP versions, such as EAPv2, as 
2 0 well as other authentication protocols extended in the described manner. EAP is merely 
an example of a possible implementation, and the invention is generally not limited 
thereto and may alternatively involve non-EAP schemes. 

In the above illustrative examples, it has been assumed that the mobile node (MN) and 

2 5 the AAAh have a common shared secret. This could for example be a symmetric key 

shared between the identity module installed in the mobile node and the home network. 
The identity module can be any tamper-resistant identity module known to the art, 
including standard SIM cards used in GSM mobile telephones, Universal SIM (USIM), 
WAP SIM, also known as WIM, ISIM and, more generally, UICC modules. For the 

3 0 MN-HA security relation, a seed or nonce can be conveyed by the MN to the AAAh 

(or the other way around, i.e. the seed is originated by the AAAh and conveyed to the 
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MN) from which the AAAh can create the MN-HA security key(s), e.g. a pre- shared 
key, based on the shared secret. The mobile node is able to generate the same security 
key(s) by itself since it originated the seed/nonce (or receives the seed from the AAAh) 
and also has the shared secret. Alternatively the AAAh may solely generate the MN- 
5 HA security key(s) and transfer them to the MN (cryptographically protected) and the 
HA. 

Although the invention has been described with reference to specific exemplary 
embodiments, it also covers equivalents to the described features, as well as 
1 0 modifications and variants obvious to a man skilled in the art. 
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ABBREVIATIONS 





AAA 


Authentication, Authorization and Accounting 




AAAh 


Home AAA server 


5 


AAAv 


Visited AAA server 




AKA 


Authentication and Key Agreement 




AP 


Access Point < 




BA 


Binding Acknowledgement 




BU 


Binding Update 


10 


CDMA 


Code Division Multiple Access 




CHAP 


Challenge Handshake Authentication Protocol 




CoA 


Care-of Address 




CSD-PPP 


Circuit Switched Data Point-to-Point Protocol 




DAD 


Duplicate Address Detection 
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DHCP 


Dynamic Host Configuration Protocol 




EAP 


Extensible Authentication Protocol 




GCA 


Generic Container Attribute 




GSM 


Global System for Mobile communications 




HA 


Home Agent 
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IKE 


Internet Key Exchange 




IP 


Internet Protocol 




IPCP 


IP Control Protocol 




IPsec 


IP Security 




IPv6CP 


IPv6 Control Protocol 
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ISAKMP 


Internet Security Association and Key Management Protocol 




LCP 


Link Control Protocol 




MD5 


Message Digest 5 




MD?v6 


Mobile IP version 6 




MN 


Mobile Node 
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NAI 


Network Access Identifier 




NAS 


Network Access Server 




NCP 


Network Control Protocol 




PAA 


PANA Authentication Agent 
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DAP 

Jr AC 


T> A XT A r<1^«+ 

FAN A Client 


T> A XT A 

JrAJNA 


Protocol for carrying Authentication for Network Access 




Personal Digital Assistant 




Packet Data Serving Node 


PPP 


Point-to-Point Protocol 


JrPPvo 


Point-to-Point Protocol version 6 


T? ATMTTC 

KAJJIUo 


Remote Authentication Dial User Service 


T> A XT 


xvaQio /access iNexAvorK 


JviN 


Radio Network 


DTT 
IV 1 1 


jbcouna inp lime 


3GPP2 


Third Generation Partnership Project 2 


SPI 


Security Parameter Index 


TLV 


Type Length Value 


WLAN 


Wireless Local Area Network 
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CLAIMS 

1. A method of authentication and authorization support for Mobile IP version 6 
5 (MIPv6) in a CDMA system, characterized by transferring MIPv6-related information 

in an authentication protocol in an end-to-end procedure between a mobile node (10) in 
a visited network and a home network of the mobile node over an AAA infrastructure. 

2. The method of claim 1, wherein the authentication protocol is an extended 
1 0 authentication protocol . 

3. The method of claim 1, wherein the end-to-end procedure is executed between the 
mobile node (10) and an AAA server (34) in the home network. 

15 4. The method of claim 3, wherein the MIPv6-related information is transferred in 
the authentication protocol between the mobile node (10) and the AAA home network 
server (34) via an internetworking access server (22) located in the visited network. 

5. The method of claim 4, wherein the internetworking access server (22) is a PDSN 

2 0 node 

6. The method of claim 4, wherein point-to-point communication between the mobile 
node (10) and the internetworking access server (22) is configured based on the CSD- 
PPP protocol. 

25 

7. The method of claim 1, wherein the MIPv6-related information comprises 
information selected from the group of MIPv6 authentication, authorization and 
configuration information. 

3 0 8. The method of claim 2, wherein the extended authentication protocol is an 

extended Extensible Authentication Protocol (EAP) and the MIPv6-related information 
is incorporated as additional data in the EAP protocol stack. 
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9. The method of claim 8, wherein the MIPv6-related information is transferred as 
EAP attributes of the method layer in the EAP protocol stack. 

10. The method of claim 8, wherein the MIPv6-related information is transferred in a 
generic container attribute available for any EAP method. 

11. The method of claim 8, wherein the MIPv6-related information is transferred in a 
method-specific generic container attribute of the method layer in the EAP protocol 
stack. 

12. The method of claim 1, wherein the authentication protocol is carried by a protocol 
selected from the group of PANA, PPP, and CSD-PPP between the mobile node (10) 
and an internetworking access server of the visited network. 

13. The method of claim 4, wherein the authentication protocol is carried by an AAA 
framework protocol application between the internetworking access server (22) of the 
visited network and the AAA server (34) in the home network. 

14. The method of claim 13, wherein the AAA framework protocol application is 
selected from the group of Diameter, and RADIUS. 

15. The method of claim 1, wherein said method further comprises the step of 
performing, for the purpose of MIPv6 hand-in, CHAP authentication between the 
mobile node and the home network. 

16. The method of claim 15, wherein said step of performing CHAP authentication 
comprises the step of using an authentication phase of PPP. 

17. The method of claim 1, wherein the MIPv6-related information is transferred over 
the AAA infrastructure for allocation of a home agent (36). 
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18. The method of claim 1, wherein the MIPv6-related information is transferred over 
the AAA infrastructure for establishing a MIPv6 security association between the 
mobile node (10) and a home agent (36). 

5 

19. The method of claim 1, wherein the MIPv6-related information is transferred over 
the AAA infrastructure for establishing a binding for the mobile node (10) in a home 
agent (36). 

10 20. The method of claim 4, wherein the internetworking access server (22) offers the 
mobile node the possibility to use PPP or CSD-PPP by sending out a standard 
PPP/LCP packet and at least a PPP/EAP packet. 

21. The method of claim 20, wherein the mobile node opts for CSD-PPP using 
1 5 PPP/EAP, concurrently processing PPP/LCP. 

22. The method of claim 20, wherein the mobile node opts for PPP and processes 
PPP/LCP. 

2 0 23. The method of claim 20, wherein the internetworking access server also sends out 
a PPP/CHAP packet together with the PPP/LCP and PPP/EAP packets. 

24. The method of claim 23, wherein the mobile node wants MIPv6 hand-in and opts 
for CSD-PPP using PPP/CHAP, concurrently processing PPP/LCP. 

25 

25. The method of claim 1, wherein assignment of a global IPv6 address is performed 
based on DHCP exchanges between the mobile node and the home network over the 
AAA infrastructure. 
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26. The method of claim 1, wherein IPv6 address configuration is performed based on 
the NCP (IPv6CP) phase of PPP for Interface-ID assignment, and IPv6 router 
solicitation/advertisement for obtaining the global prefix of the IPv6 address. 

5 27. A system for authentication and authorization support for Mobile IP version 6 
(MIPv6) in a CDMA system, characterized by means for transferring MIPv6-related 
information in an authentication protocol in an end-to-end procedure between a mobile 
node (10) in a visited network and a home network of the mobile node over an AAA 
infrastructure. 

10 

28. The system of claim 27, wherein the authentication protocol is an extended 
authentication protocol. 

29. The system of claim 27, wherein the end-to-end procedure is between the mobile 
15 node (10) and an AAA server (34) in the home network. 

30. The system of claim 29, wherein the MIPv6-related information is transferred in 
the authentication protocol between the mobile node (10) and the AAA home network 
server (34) via an internetworking access server (22) located in the visited network. 

20 

3 1 . The method of claim 30, wherein the internetworking access server (22) is a PDSN 
node 

32. The system of claim 30, further comprising means for configuring point-to-point 
25 communication between the mobile node (10) and the internetworking access server 

(22) based on the CSD-PPP protocol. 

33. The system of claim 27, wherein the MIPv6-related information comprises 
information selected from the group of MIPv6 authentication, authorization and 

3 0 configuration information. 
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34. The system of claim 28, wherein the extended authentication protocol is an 
extended Extensible Authentication Protocol (EAP) and the MIPv6-related information 
is incorporated as additional data in the EAP protocol stack. 

5 35. The system of claim 34, wherein said means for transferring MIPv6~related 
information comprises means for transferring the MIPv6-related information as EAP 
attributes of the method layer in the EAP protocol stack. 

36. The system of claim 34, wherein said means for transferring MIPv6-related 
10 information comprises means for transferring the MIPv6-related information in a 

generic container attribute available for any EAP method. 

37. The system of claim 34, wherein said means for transferring MIPv6-related 
information comprises means for transferring the MIPv6-related information in a 

15 method-specific generic container attribute of the method layer in the EAP protocol 
stack. 

38. The system of claim 27, wherein the authentication protocol is carried by a 
protocol selected from the group of PANA, PPP, and CSD-PPP between the mobile 

2 0 node (10) and an internetworking access server of the visited network. 

39. The system of claim 30, wherein the authentication protocol is carried by an AAA 
framework protocol application between the internetworking access server of the 
visited network and the AAA server (34) in the home network. 

25 

40. The system of claim 39, wherein the AAA framework protocol application is 
selected from the group of Diameter, and RADIUS. 

41. The system of claim 27, wherein said system further comprises means for 

3 0 performing, for the purpose of MIPv6 hand-in, CHAP authentication between the 

mobile node and the home network. 
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42. The system of claim 41 , wherein said means for performing CHAP authentication 
is operable for using an authentication phase of PPP. 

43. The system of claim 27, wherein said means for transferring MIPv6-related 
information is operable for transferring the MIPv6-related information over the AAA 
infrastructure for allocation of a home agent (36). 

44. The system of claim 27, wherein said means for transferring MIPv6~related 
information is operable for transferring the MIPv6-related information over the AAA 
infrastructure for establishing a MIPv6 security association between the mobile node 
(10) and a home agent (36). 

45. The system of claim 27, wherein said means for transferring MIPv6-related 
information is operable for transferring the MIPv6-related information over the AAA 
infrastructure for establishing a binding for the mobile node (10) in a home agent (36). 

46. The system of claim 30, wherein the internetworking access server (22) is operable 
for offering the mobile node the possibility to use PPP or CSD-PPP by sending out a 
standard PPP/LCP packet and at least a PPP/EAP packet. 

47. The system of claim 46, wherein the mobile node is operable for selecting CSD- 
PPP using PPP/EAP, concurrently processing PPP/LCP. 

48. The system of claim 46, wherein the mobile node is operable for selecting PPP and 
processing PPP/LCP. 

49. The system of claim 46, wherein the internetworking access server is operable for 
sending out a PPP/CHAP packet together with the PPP/LCP and PPP/EAP packets. 
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50. The system of claim 49, wherein the mobile node, wanting MIPv6 hand-in, is 
operable for selecting CSD-PPP using PPP/CHAP, concurrently processing PPP/LCP. 

51. The system of claim 27, further comprising means for assignment of a global IPv6 
5 address based on DHCP exchanges between the mobile node and the home network 

over the AAA infrastructure. 

52. The system of claim 27, further comprising means for IP address configuration 
based on the NCP (IPv6CP) phase of PPP for Interface-ID assignment, and IPv6 router 

1 0 solicitation/advertisement for obtaining the global prefix of the IPv6 address. 

53. A system for Mobile IP version 6 (MIPv6) hand-in within a CDMA framework, 
characterized by means for performing CHAP authentication between a mobile node 
(10) in a visited network and an AAA server in a home network of the mobile node 

1 5 over an AAA infrastructure. 

54. An AAA home network server (34) for authentication and authorization support for 
Mobile IP version 6 (MIPv6) in a CDMA system, characterized by 

means for assigning a home agent (36) to a mobile node (10); and 
2 0 means for distributing credential-related data for security association 

establishment between the mobile node and the home agent to the mobile node and the 
home agent, respectively. 

55. The server of claim 54, characterized by means for assigning a home address to the 
2 5 mobile node (10). 

56. The server of claim 55, characterized by means for configuring the home address of 
the mobile node (10) using the roundtrips of a selected EAP procedure. 
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57. The server of claim 55, characterized by means for transferring the home address of 
the mobile node (10) to the home agent (36) using an AAA framework protocol 
application. 
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